PT-2013-3220 · Oracle Financial Services · Flexcube Direct Banking
Published
2013-04-17
·
Updated
2013-10-11
·
CVE-2013-1539
CVSS v2.0
3.5
Low
| Vector | AV:N/AC:M/Au:S/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Oracle Financial Services Software FLEXCUBE Direct Banking versions 2.8.0 through 3.1.0
Oracle Financial Services Software FLEXCUBE Direct Banking versions 5.0.2 through 5.0.5
Oracle Financial Services Software FLEXCUBE Direct Banking versions 5.3.0 through 5.3.4
Description
The issue affects confidentiality and can be exploited by remote authenticated users via vectors related to CTF.
Recommendations
For versions 2.8.0 through 3.1.0, update to a version outside of this range to resolve the issue.
For versions 5.0.2 through 5.0.5, update to a version outside of this range to resolve the issue.
For versions 5.3.0 through 5.3.4, update to a version outside of this range to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Flexcube Direct Banking